To fight the imposter syndrome …

6.3.2026

RR (architect) approved my dashboard Go tool.

Helped out RS (tester) with Grafana dashboard.

23.2.2026

Deployed argocd to kind cluster.

20.2.2026

Added Slovakia/TFS to go.dev/wiki/GoUsers.

16.2.2026

SD, udajne najlepsi Go programmer v BA teame, mi dal takyto PR review na slogger: “Nice idiomatic code. Kudos. Need some final touches.”

2025

• wrote ghleaks
• started gomonk.net

2024

• wrote hostrecon, smoke and hackbox
• wrote mutating-wh with e2e tests
• created new version of gokatas
• updated docs and did several pocs
• wrote 7 blog posts
• read Cloud Native Devops with Kubernetes
• read Kubernetes Up & Running
• got new $job and successfully onboarded
• translated a book

2023

• wrote github.com/jreisinger/mathpractice
• trying to build cybersecurity program based on NIST CSF 2.0 (notes/sec/nist-csf.md)
• reviewing API security (notes/sec/api.md)
• embedding vulnerability scanning into CI/CD (.github/workflows/scan-vulns-go.yml)
• reviewed Go repojacking (notes/sec/repojacking.md, tools/cmd/gorepojack)
• reviewing and improving email security (DKIM, SPF, DMARC)
• did and tested Datadog-Pagerduty integration to call us when there’s an issue
• unified log attributes in Datadog
• wrote sectools/scripts/httpver.sh to check HTTP versions of our endpoints
• delivered company-wide presentation about data breach and security
• obtained AWS Certified Cloud Practitioner certification
• review what AWS accounts are integrated with DD and security monitored (sectools/dd-awsinfo)
• found and reported leaked git secrets
  • documented and explained to engineers how to prevent it
  • helped engineers to reviewed commited secrets
• found and reported public S3 buckets (sectools/aws-s3pub)
• lowered AWS and Datadog costs (sectools/aws-dbinfo)
• reviewed Kubernetes clusters security

2022

• understood and documented Kubernetes ingress WAF
  • operated Kubernetes ingress WAF: whitelisting and deploying rules
  • built kubectl-modsec to extract ModSecurity WAF information from Kubernetes
• built (with P’s help) a dummy gRPC application demologger-grpc to demonstrate and test logging and tracing
• interviewed and evaluated cloud team candidates - mostly developers
• set up and documented security monitoring: logs, detection rules, alerting
  • learned Datadog
  • delivered company-wide presentation about security monitoring
  • [ongoing] operating security monitoring and handling alerts